Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ac/f3549f-18f7-48b0-901d-25cc9d6cfbb9/1/HaIrpIHwsq3oyp6hyaqGbkWPSiU.roa
File: HaIrpIHwsq3oyp6hyaqGbkWPSiU.roa (raw, json)
Hash identifier: JLKVh89ZlUF1EhUiBrAIjYCYH4VjlklY0WYmInZVT5A=
Subject key identifier: 1D:A2:2B:A4:81:F0:B2:AD:E8:CA:9E:A1:C9:AA:86:6E:45:8F:4A:25
Certificate issuer: /CN=23446da7a70bce773ec2bc1655aae30c3c18412c
Certificate serial: 042409E3
Authority key identifier: 23:44:6D:A7:A7:0B:CE:77:3E:C2:BC:16:55:AA:E3:0C:3C:18:41:2C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/I0Rtp6cLznc-wrwWVarjDDwYQSw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ac/f3549f-18f7-48b0-901d-25cc9d6cfbb9/1/HaIrpIHwsq3oyp6hyaqGbkWPSiU.roa
Signing time: Sat 01 Jan 2022 05:57:22 +0000
ROA not before: Sat 01 Jan 2022 05:57:22 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 11426
IP address blocks: 185.164.64.0/23 maxlen: 23
84.252.84.0/23 maxlen: 23
84.252.86.0/23 maxlen: 23
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 69470691 (0x42409e3)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=23446da7a70bce773ec2bc1655aae30c3c18412c
Validity
Not Before: Jan 1 05:57:22 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=1da22ba481f0b2ade8ca9ea1c9aa866e458f4a25
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d7:4e:9c:a7:b6:d0:b7:47:6b:86:b7:ff:a6:24:
c8:e7:c6:bb:64:28:dc:0c:91:2c:7d:3a:8f:a6:0d:
1e:da:f7:88:bf:7d:19:c7:8c:ee:d5:5c:2d:1c:11:
01:aa:f2:c4:1e:af:77:3c:46:0a:ad:24:4d:a9:4b:
74:64:7a:2e:8c:8f:d2:4f:9c:62:3d:42:ed:9e:c0:
57:6a:0d:5a:4a:dd:91:2c:24:7a:37:25:bc:ee:a4:
ba:b6:50:e8:0a:5d:79:d1:cd:9b:25:f1:cf:18:ad:
e5:2e:93:6b:61:ca:7d:8d:78:0e:99:2b:09:2c:24:
d3:c9:3a:38:2b:1e:f4:1f:6c:25:ef:5c:57:27:4c:
f4:ee:7c:08:93:d2:21:28:3a:d3:4b:81:fc:ac:cf:
84:aa:d9:f6:e8:b7:09:d0:9b:96:d1:c2:b4:a5:82:
b5:7f:2a:01:ae:76:37:50:38:82:e3:c3:fb:2b:79:
4f:3c:59:03:f5:52:eb:57:b5:52:c1:e9:56:e6:40:
8e:70:71:2b:d5:e7:22:f8:bd:02:7e:b1:f2:dc:e4:
05:cf:33:47:62:ed:ec:9d:85:b6:dc:a0:61:38:44:
c4:6d:40:3c:75:c8:e8:80:c2:df:f9:20:0f:98:d0:
f7:09:0d:04:6e:8d:4f:cc:92:ce:64:75:f5:c2:18:
41:81
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1D:A2:2B:A4:81:F0:B2:AD:E8:CA:9E:A1:C9:AA:86:6E:45:8F:4A:25
X509v3 Authority Key Identifier:
keyid:23:44:6D:A7:A7:0B:CE:77:3E:C2:BC:16:55:AA:E3:0C:3C:18:41:2C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/I0Rtp6cLznc-wrwWVarjDDwYQSw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ac/f3549f-18f7-48b0-901d-25cc9d6cfbb9/1/HaIrpIHwsq3oyp6hyaqGbkWPSiU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ac/f3549f-18f7-48b0-901d-25cc9d6cfbb9/1/I0Rtp6cLznc-wrwWVarjDDwYQSw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
84.252.84.0/22
185.164.64.0/23
Signature Algorithm: sha256WithRSAEncryption
55:07:0e:ee:2a:bd:2c:d5:f7:bf:e0:9e:7e:da:2a:b8:40:f6:
32:63:d8:84:9b:b5:69:0e:af:54:bd:10:46:26:ce:ba:90:a2:
ba:7e:4f:d4:5e:2d:fb:ba:41:60:8c:f2:18:5d:04:3a:27:c4:
64:33:0f:88:e3:d4:95:6b:16:b8:f9:b0:9b:23:df:d8:bf:0c:
9f:77:0f:c3:74:ea:bb:8d:04:51:b8:da:27:fa:71:c8:e1:83:
1e:ee:1a:b3:80:20:21:bc:b6:bf:7f:f0:d7:b0:1e:86:5e:9b:
16:82:2f:99:20:dd:35:c5:94:42:bd:75:36:93:15:59:ea:8d:
a6:d6:79:63:0f:8c:0c:4a:93:24:51:be:44:70:a8:e4:34:04:
08:9f:74:fe:8f:2f:4a:67:6f:b6:df:75:40:55:88:88:c7:f0:
1b:3c:cc:fe:dc:15:f4:88:d1:cd:20:12:b9:00:be:10:79:2c:
fc:09:e7:b7:2a:6f:db:c2:02:7d:ad:ce:a8:cf:b8:f5:58:c9:
71:89:ef:ec:e2:9d:ad:3d:92:5b:ea:c1:54:a2:82:a6:c0:23:
1b:25:ac:6d:f9:dd:11:87:77:ec:03:59:ca:74:9a:cb:a3:c5:
1d:70:4f:86:0f:bc:f3:91:7a:93:54:e2:7d:07:8b:1b:f5:de:
60:e6:d8:a3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:06:03 2023 by rpki-client on console-ams.rpki-client.org